Oracle TNS侦听器远程中毒(CVE-2012-1675)

已于 2023-07-28 14:53:41 修改
阅读量847 收藏
点赞数
文章标签: oracle 数据库
于 2023-07-28 14:43:40 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weixin_45833902/article/details/121207601
版权
文章详细展示了如何使用OracleNetConfigurationAssistant(netca)工具在静默模式下配置监听器,并通过示例响应文件netca.rsp进行定制安装。过程中提到了监听器的启动、配置以及可能涉及的安全漏洞CVE-2012-1675,该漏洞可能使Oracle服务器面临远程中毒的风险。
摘要由CSDN通过智能技术生成

Oracle TNS侦听器远程中毒(CVE-2012-1675)

[oracle@orac bin]$ netca -silent -responsefile /home/oracle/netca.rsp

Parsing command line arguments:
    Parameter "silent" = true
    Parameter "responsefile" = /home/oracle/netca.rsp
Done parsing command line arguments.
Oracle Net Services Configuration:
Profile configuration complete.
Oracle Net Listener Startup:
    Running Listener Control: 
      /home/data/oracle/product/11.2.0/db_1/bin/lsnrctl start LISTENER
    Listener Control complete.
    Listener started successfully.
Listener configuration complete.
Oracle Net Services configuration successful. The exit code is 0
[oracle@orac bin]$ cd $ORACLE_HOME/network/admin 
[oracle@orac admin]$ ls
listener.ora  samples  shrept.lst  sqlnet.ora


$ cp netca.rsp /home/oracle/

###################################################################### 
## Copyright(c) 1998, 2011 Oracle Corporation. All rights reserved. ## 
##                                                                  ## 
## Specify values for the variables listed below to customize your  ## 
## installation.                                                    ## 
##                                                                  ## 
## Each variable is associated with a comment. The comment          ## 
## identifies the variable type.                                    ## 
##                                                                  ## 
## Please specify the values in the following format:               ## 
##                                                                  ## 
##         Type         Example                                     ## 
##         String       "Sample Value"                              ## 
##         Boolean      True or False                               ## 
##         Number       1000                                        ## 
##         StringList   {"String value 1","String Value 2"}         ## 
##                                                                  ## 
######################################################################
##                                                                  ## 
## This sample response file causes the Oracle Net Configuration    ##
## Assistant (NetCA) to complete an Oracle Net configuration during ##
## a custom install of the Oracle11g server which is similar to     ##
## what would be created by the NetCA during typical Oracle11g      ##
## install. It also documents all of the NetCA response file        ##
## variables so you can create your own response file to configure  ##
## Oracle Net during an install the way you wish.                   ##
##                                                                  ## 
###################################################################### 

[GENERAL]
RESPONSEFILE_VERSION="11.2"
CREATE_TYPE="CUSTOM"

#-------------------------------------------------------------------------------
# Name       : SHOW_GUI
# Datatype   : Boolean
# Description: This variable controls appearance/suppression of the NetCA GUI,
# Pre-req    : N/A
# Default    : TRUE
# Note:
# This must be set to false in order to run NetCA in silent mode. 
# This is a substitute of "/silent" flag in the NetCA command line.
# The command line flag has precedence over the one in this response file.
# This feature is present since 10.1.0.3.
#-------------------------------------------------------------------------------
#SHOW_GUI=false

#-------------------------------------------------------------------------------
# Name       : LOG_FILE
# Datatype   : String
# Description: If present, NetCA will log output to this file in addition to the
#              standard out.
# Pre-req    : N/A
# Default    : NONE
# Note:
#       This is a substitute of "/log" in the NetCA command line.
# The command line argument has precedence over the one in this response file.
# This feature is present since 10.1.0.3.
#-------------------------------------------------------------------------------
#LOG_FILE=""/oracle11gHome/network/tools/log/netca.log""

[oracle.net.ca]
#INSTALLED_COMPONENTS;StringList;list of installed components
# The possible values for installed components are:
# "net8","server","client","aso", "cman", "javavm" 
INSTALLED_COMPONENTS={"server","net8","javavm"}

#INSTALL_TYPE;String;type of install
# The possible values for install type are:
# "typical","minimal" or "custom"
INSTALL_TYPE=""typical""

#LISTENER_NUMBER;Number;Number of Listeners
# A typical install sets one listener 
LISTENER_NUMBER=1

#LISTENER_NAMES;StringList;list of listener names
# The values for listener are:
# "LISTENER","LISTENER1","LISTENER2","LISTENER3", ...
# A typical install sets only "LISTENER" 
LISTENER_NAMES={"LISTENER"}

#LISTENER_PROTOCOLS;StringList;list of listener addresses (protocols and parameters separated by semicolons)
# The possible values for listener protocols are:
# "TCP;1521","TCPS;2484","NMP;ORAPIPE","IPC;IPCKEY","VI;1521" 
# A typical install sets only "TCP;1521" 
LISTENER_PROTOCOLS={"TCP;1521"}

#LISTENER_START;String;name of the listener to start, in double quotes
LISTENER_START=""LISTENER""

#NAMING_METHODS;StringList;list of naming methods
# The possible values for naming methods are: 
# LDAP, TNSNAMES, ONAMES, HOSTNAME, NOVELL, NIS, DCE
# A typical install sets only: "TNSNAMES","ONAMES","HOSTNAMES" 
# or "LDAP","TNSNAMES","ONAMES","HOSTNAMES" for LDAP
NAMING_METHODS={"TNSNAMES","ONAMES","HOSTNAME"}

#NOVELL_NAMECONTEXT;String;Novell Directory Service name context, in double quotes
# A typical install does not use this variable. 
#NOVELL_NAMECONTEXT = ""NAMCONTEXT""

#SUN_METAMAP;String; SUN meta map, in double quotes
# A typical install does not use this variable. 
#SUN_METAMAP = ""MAP""

#DCE_CELLNAME;String;DCE cell name, in double quotes
# A typical install does not use this variable. 
#DCE_CELLNAME = ""CELL""

#NSN_NUMBER;Number;Number of NetService Names
# A typical install sets one net service name
NSN_NUMBER=1

#NSN_NAMES;StringList;list of Net Service names
# A typical install sets net service name to "EXTPROC_CONNECTION_DATA"
NSN_NAMES={"EXTPROC_CONNECTION_DATA"}

#NSN_SERVICE;StringList;Oracle11g database's service name
# A typical install sets Oracle11g database's service name to "PLSExtProc"
NSN_SERVICE={"PLSExtProc"}

#NSN_PROTOCOLS;StringList;list of coma separated strings of Net Service Name protocol parameters
# The possible values for net service name protocol parameters are:
# "TCP;HOSTNAME;1521","TCPS;HOSTNAME;2484","NMP;COMPUTERNAME;ORAPIPE","VI;HOSTNAME;1521","IPC;IPCKEY"  
# A typical install sets parameters to "IPC;EXTPROC"
NSN_PROTOCOLS={"TCP;HOSTNAME;1521"}



[oracle@orac admin]$ cat listener.ora 
# listener.ora Network Configuration File: /home/data/oracle/product/11.2.0/db_1/network/admin/listener.ora
# Generated by Oracle configuration tools.

LISTENER =
  (DESCRIPTION_LIST =
    (DESCRIPTION =
      (ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC1522))
      (ADDRESS = (PROTOCOL = TCP)(HOST = 210.31.45.195)(PORT = 1522))
    )
  )

ADR_BASE_LISTENER = /home/data/oracle

VALID_NODE_CHECKING_REGISTRATION_LISTENER=1
冥净
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
oracle tns远程投毒,Oracle TNS Listener Remote Poisoning 测试
weixin_33603823的博客
04-04 1107
远程数据投毒漏洞(CVE-2012-1675)允许***者在不提供用户名/密码的情况下,向远程TNS Listener”组件处理的数据投毒漏洞。COST 是class of secure transports 的缩写。是为了控制实例注册提供的一种安全控制机制。其作用是对于一个确定的listener,限制哪些实例通过哪些协议可以进行注册。这将避免有其他远程实例进行恶意注册,并由此产生信息泄露等风...
oracle tns远程监听器中毒,Oracle 11.2.0.4 TNS 监听器远程中毒漏洞(CVE-2012-1675)修复方案...
weixin_36280540的博客
04-06 3203
Oracle 11.2.0.4 单实例和RAC修复方案随着对网络安全的进一步重视,Oracle TNS 监听器远程中毒漏洞(CVE-2012-1675)被列为了高危漏洞,需要进行漏洞修复。从Oracle 11.2.0.4开始,Oracle 引入了Valid Node Checking For Registration(VNCR)新特性,可以通过配置参数VALID_NODE_CHECKING_REG...
Oracle11.2.0.1,(CVE-2012-1675)漏洞解决方案
ζั͡山 ั͡有扶苏 ั͡✾的博客
04-17 570
查看监听服务信息,如果没有发现“REMOTE SERVER”字样,说明此时漏洞已经修复。
Oracle Database Server 'TNS Listener'远程数据投毒漏洞CVE-2012-1675)的解决文档
05-25
安全厂家给出的解决办法: 链接:http://www.oracle.com/technetwork/topics/security/alert-cve-2012-1675-1608180.html 根据此链接得到解决方法: ? 1234 SolutionRecommendations for protecting against this vulnerability can be found at:My Oracle Support Note 1340831.1 for Oracle Database deployments that use Oracle Real Application Clusters (RAC).My Oracle Support Note 1453883.1 for Oracle Database deployments that do not use RAC. 目前这里环境不是RAC,参考文档1453883.1: Using Class of Secure Transport (COST) to Restrict Instance Registration (
ORACLE TNS Listener 远程注册投毒
最新发布
sqlora的专栏
07-02 66
简单来说对于 11.2.0.4 以前的版本需要打上对应补丁 ,创建 wallet 密钥并对监听进行相应的修改,而对于 11.2.0.4 及 12c 以上的版本只需要把默认的 VALID_NODE_CHECKING_REGISTRATION_listener_name 参数至为 on 即可。( 6 )试用破解的用户名 / 密码登陆 Oracle ,完成对 Oracle数据的访问。( 2 )新登陆的用户,在 TNS 的负载均衡策略下,有可能流量登录到伪造的监听。如果监听名改过记得修改。
oracle TNS Listener 远程投毒漏洞修复
zongzizz的博客
09-27 1992
oracle TNS Listener 远程投毒漏洞修复
【转】ORACLE TNS Listener远程注册投毒(Poison Attack)漏洞
weixin_30414635的博客
12-04 813
来源:http://blog.csdn.net/wengtf/article/details/46632405 此次有用户正好大规模安全漏洞扫描后,发现此漏洞,该漏洞存在于Oracle DB的所有版本中,当然10g和11g均中招. 1. Vulnerability Description(漏洞描述) This security alert addresses the securi...
Oracle Database Server 'TNS Listener'远程数据投毒漏洞CVE-2012-1675)的完美解决方法
09-10
主要介绍了Oracle Database Server 'TNS Listener'远程数据投毒漏洞CVE-2012-1675的完美解决方法的相关资料,本文介绍的非常详细,具有参考借鉴价值,需要的朋友可以参考下
Oracle Database ServerTNS Listener远程数据投毒漏洞CVE-2012-1675)的完美解决方法
12-16
### Oracle Database ServerTNS Listener远程数据投毒漏洞CVE-2012-1675)的完美解决方法 #### 1. 确定解决方案 CVE-2012-1675 是一个针对Oracle数据库服务器TNS Listener远程数据投毒漏洞。该漏洞允许...
oracle远程连接服务器出现 ORA-12170 TNS:连接超时 解决办法
12-16
错误描述:oracle远程连接服务器出现 ORA-12170 TNS:连接超时 错误检查:有很多是oracle自身安装的问题,但是我这里服务器配置正常,监听正常,服务正常,远程可以ping通服务器。 这里主要是防火墙问题,解决办法: ...
TNS-12541: TNS: 无监听程序 TNS-12560
08-13
TNS-12541: TNS: 无监听程序 TNS-12560: TNS: 协议适配器错误 TNS-00511: 无监听程序 文章转自:http://www.luocs.com/archives/464.html 此文版权归作者 – yaogang所有,转载请注明yaogang©www.luocs.com。 ...
oracle 11.2.0.1 CVE-2012-1675 补丁:p12880299_112010_Linux-x86-64.zip
01-19
CVE-2012-1675 补丁 oracle 11.2.0.1
ORACLE TNS Listener远程注册投毒(Poison Attack)漏洞
热门推荐
Wonderful's DBA Story
06-25 2万+
此次有用户正好大规模安全漏洞扫描后,发现此漏洞,该漏洞存在于Oracle DB的所有版本中,当然10g和11g均中招. Vulnerability Description(漏洞描述) This security alert addresses the security issue CVE-2012-1675, a vulnerability in the TNS listener wh
1. 漏洞复测系列 -- Oracle TNS Listener远程数据投毒CVE-2012-1675
Peter 的博客
01-15 9217
本系列文章旨在对于有一定网络安全基础的人员,在日常工作中扫描出来的各种漏洞,如何进行验证,以区分该漏洞是否存在或是扫描器误报。请勿应用非法途径。 1. Oracle TNS Listener远程数据投毒一. 使用scanner下扫描模块扫描是否存在漏洞。 该漏洞可以远程获取到oracle的内存信息,验证方法采用kali Linux系统集成的metasploit进行测试验证。 一. 使用sca...
Oracle 11.2.0.4 TNS 监听器远程中毒漏洞(CVE-2012-1675)修复方案
09-05 2万+
Oracle 11.2.0.4 单实例修复方案 随着对网络安全的进一步重视,Oracle TNS 监听器远程中毒漏洞(CVE-2012-1675)被列为了高危漏洞,需要进行漏洞修复。 从Oracle 11.2.0.4开始,Oracle 引入了Valid Node Checking For Registration(VNCR)新特性,可以通过配置参数VALID_NODE_CHECKING_REGIS...
oracle远程投毒漏洞复现,oracle TNS Listener远程投毒CVE-2012-1675漏洞分析、复现...
weixin_28896255的博客
04-10 5808
漏洞原理分析:CVE-2012-1675漏洞产生的原因是因为“TNS Listener”组件中允许攻击者不使用用户名和密码的情况下就变成“自家人”,也就是说攻击者冒充受害者的小弟,但是受害者没有进行任何认证就相信了。然后现在受害者就有两个同名数据库了,监听将自动按照负载均衡把这次访问发送到负载低的数据库上,进行连接访问。然后我们就在连接处开设一个抓包工具就可以抓取受害人向攻击者发送的所有数据了。...
Oracle Database ServerTNS Listener远程数据投毒漏洞处理
sqlora的专栏
12-06 1596
listener.ora添加: 11g版本以上:添加 VALID_NODE_CHECKING_REGISTRATION_LISTENER=ON 10g环境添加:SECURE_REGISTER_LISTENER = (TCP) 重启监听即可。
Oracle Database Server 'TNS Listener'远程数据投毒漏洞CVE-2012-1675
Ryan——进阶之路
11-14 1万+
安全公告:http://www.oracle.com/technetwork/topics/security/alert-cve-2012-1675-1608180.html 一、解决方案 RAC:My Oracle Support Note 1340831.1 非 RAC:My Oracle Support Note 1453883.1  二、简单举例:非
解决ORA-12541错误:TNS无监听程序的步骤
"在安装Oracle数据库后,尝试使用PL/SQL Developer工具进行连接时遇到ORA-12541 TNS:无监听程序的错误。该问题通常表明Oracle的监听服务未启动或配置不正确。解决这个问题需要启动Oracle的监听程序,并对网络服务名...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值